US20040243803A1 - Controlled-access method and system for transmitting scrambled digital data in a data exchange network - Google Patents

Controlled-access method and system for transmitting scrambled digital data in a data exchange network Download PDF

Info

Publication number
US20040243803A1
US20040243803A1 US10/493,933 US49393304A US2004243803A1 US 20040243803 A1 US20040243803 A1 US 20040243803A1 US 49393304 A US49393304 A US 49393304A US 2004243803 A1 US2004243803 A1 US 2004243803A1
Authority
US
United States
Prior art keywords
terminal
data
control word
network
digital
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US10/493,933
Inventor
Andre Codet
Pierre Fevrier
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Rhodia Chimie SAS
Orange SA
Original Assignee
France Telecom SA
Rhodia Chimie SAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by France Telecom SA, Rhodia Chimie SAS filed Critical France Telecom SA
Assigned to FRANCE TELECOM reassignment FRANCE TELECOM ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: CODET, ANDRE, FEVRIER, PIERRE
Assigned to CHIMIE, RHODIA reassignment CHIMIE, RHODIA ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: GUENOUNI, NATHALIE, PEVERE, VIRGINIE, VOGIN, BERNARD
Publication of US20040243803A1 publication Critical patent/US20040243803A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/266Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/633Control signals issued by server directed to the network components or client
    • H04N21/6332Control signals issued by server directed to the network components or client directed to client
    • H04N21/6334Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
    • H04N21/63345Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key by transmitting keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/167Systems rendering the television signal unintelligible and subsequently intelligible
    • H04N7/1675Providing digital key or authorisation information for generation or regeneration of the scrambling sequence

Definitions

  • the invention is in the domain of broadcasting and access control to digital data, events, audiovisual programs and thematic channels broadcast in an environment open to terminals that do not have a security processor.
  • the invention relates to a broadcasting method and system with access control to audiovisual programs to several terminals connected to an IP type network.
  • the DVB (Digital Video Broadcasting) standard includes an access control mechanism in which scrambling/descrambling information is transmitted to subscribers with ECM and EMM (Entitlement Control Message and Entitlement Management Message respectively) access control messages, and is stored in a memory card.
  • This information comprises an encrypted control word CW that periodically changes, for example every ten seconds.
  • a new control word corresponding to the same program or to a new program is transmitted to subscribers with ECM access control messages.
  • ECMs are renewed every ten seconds and each ECM comprises three fields, a first field containing access parameters that define conditions of access to the scrambled program, for example such as parental control or geographic limitation of reception of the scrambled program, a second field comprising the control word CW encrypted by an operations key and a third field containing integrity checking parameters for the transmitted information.
  • EMMs generally comprise three fields, a first address field to select a decoder for a user or a user group, a second field containing access authorisation for the user or users, containing the operations key encrypted by a group key previously distributed to a subscriber group, and a third field containing integrity checking parameters for the transmitted information.
  • EMMs are transmitted before the programs to which they are applicable and are stored in a smart card.
  • a decoder When a decoder receives an EMM containing the encrypted operations key corresponding to its group, it checks whether or not this key has already been stored. If not, the operations key is decrypted by the inverse function of the encryption function and is then stored.
  • the decoder is composed of a terminal and a smart card integrating the security processor. And when the scrambled program is broadcast, the operations key is used to decrypt the control word CW associated with it and that is sent to subscribers through ECMs or written as soon as the receiver is initialised.
  • a subscriber needs to have equipment that generally comprises a security processor included in a smart card containing access parameters defining access rights to scrambled programs, in order to access the scrambled programs.
  • the access control system described above is not suitable for broadcasting through the Internet network since it would be unthinkable to distribute a smart card reader to every user connected to the networks due to the large number of potential subscribers and the geographic dispersion of these subscribers.
  • the purpose of the invention is to make a method of controlling access to scrambled data that might be read using terminals that do not include a security processor or a smart card.
  • this method is applicable to two types of services; event-controlled broadcasting and broadcasting of television program channels.
  • Event-controlled broadcasting requires one channel for each event (music concert, sports event, training, etc.).
  • Broadcasting of television program channels relates to:
  • the method according to the invention comprises three steps:
  • a first scrambling step consisting in:
  • the method also comprises the following preliminary steps:
  • the digital data distinctive of the terminal is the address of this terminal in the network.
  • the scrambled digital data are transmitted either by radio channel or by wire or by digital cable, or by a recording media.
  • the data exchange network is of the IP type.
  • control word CW is preferably generated in a random manner.
  • the reservation number and the terminal address in the network are transmitted by the terminal user to the digital data supplier using the TCP/IP protocol.
  • the digital data may for example be audiovisual programs.
  • the method according to the invention comprises an additional step consisting in transmitting a second random data with the scrambled digital data to make a distinction between the scrambling/descrambling steps using an identical control word CW.
  • the method according to the invention comprises a step consisting in assigning a MultiCast address to each service supplied through the network and storing the MultiCast address, the random data (ALEA 1 ) and the corresponding control words, CW in a services table.
  • the (ALEA 1 , CW) pair is changed regularly.
  • the validity duration of this pair may be fixed or variable.
  • each broadcast service comprises a plurality of elementary audio, basic video and enhanced video throughputs.
  • the scrambling step comprises the following sub-steps:
  • the broadcasting step consists in transmitting the second IP datagram through the IP network.
  • the second IP datagram uses the UDP transport protocol
  • the descrambling step comprises the following sub-steps:
  • the elementary audio and video throughputs of a given service are broadcast separately on the network using different destination ports.
  • the basic audio and video data are scrambled.
  • the enhanced video data may or may not be scrambled.
  • the elementary audio and video throughputs of a given service are multiplexed so that they only transmit a single service throughput on a given port. In this case, only the service throughput is scrambled.
  • the method according to the invention is implemented in a transmission system with access control of digital data scrambled by a control word CW to at least one terminal connected to a data exchange network comprising:
  • the reservation gateway comprises:
  • [0065] means of calculating a specific digital key K for the terminal, as a function of the digital sequence S and the control word CW.
  • the reservation gateway comprises:
  • [0067] means of assigning a reservation number to any user who has previously reserved an access right to a service supplied through the network
  • [0068] means of transmitting the specific digital key K to this user in exchange for the said reservation number and the said digital data distinctive of the terminal in the network.
  • the reservation gateway also comprises a database designed to store a plurality of reservation numbers each corresponding to a specific individual key.
  • the reservation gateway comprises means of assigning a MultiCast address to each service supplied through the network and a memory containing a services table associating the corresponding MultiCast address, port, random data (ALEA 1 ) and control word CW.
  • a services table associating the corresponding MultiCast address, port, random data (ALEA 1 ) and control word CW.
  • the (ALEA 1 , CW) pair is changed regularly.
  • control word CW is generated at random.
  • the digital data represent audiovisual programs.
  • the data exchange network is of the IP type and the said scrambling platform also comprises:
  • [0077] means of building a second datagram, with an IP header containing the MultiCast address of the service, the Destination address, a destination port number dedicated to the descrambler and a useful content containing the scrambled input datagram and the header specific to the access control.
  • the invention also relates to a scrambled digital data reception device comprising:
  • [0082] means of reinjecting the descrambled useful content onto the IP stack through a port dedicated to processing and display of the received program.
  • FIG. 1 shows a broadcasting system according to the invention
  • FIGS. 2 and 3 diagrammatically show two steps in initialisation of the method according to the invention
  • FIG. 4 shows a block diagram illustrating a preferred embodiment of the method according to the invention.
  • FIGS. 5 and 6 diagrammatically illustrate a process for changing control words according to the invention.
  • FIG. 1 diagrammatically shows a system that broadcasts scrambled audiovisual programs or thematic channels through the Internet network 2 to terminals 4 without necessarily having a security processor.
  • This system comprises a MultiCast broadcasting server 6 that transmits a single data packet to the terminals 4 .
  • the server 6 is connected to an antenna 8 for reception of audiovisual programs transmitted according to the MPEG2/MPEG4 standard, or to a database 10 or a source of television programs such as a pick-up camera 12 .
  • the server 6 is also connected to an audiovisual programs reservation gateway 14 and a scrambling platform 16 .
  • the reservation gateway 14 is a computer containing software used to manage a presentation page of a commercial offer of audiovisual programs and to generate reservation numbers for access rights to these programs.
  • the scrambling platform 16 is connected to a computer comprising cryptographic software containing an encryption function G used to calculate individual keys.
  • Customer terminals 4 comprise software using a decryption function used to rebuild control words CW.
  • the process according to the invention is based on an “IP to UDP tunnel” solution, in other words an incoming IP/UDP datagram that is scrambled and then encapsulated in a new output IP/UDP datagram.
  • IP to UDP tunnel an incoming IP/UDP datagram that is scrambled and then encapsulated in a new output IP/UDP datagram.
  • the customer station uses the method described in this application to descramble IP/UDP datagrams received through the network, to extract service input parameters and to present unencrypted broadcast programs to application level to display them.
  • the method according to the invention uses two preliminary steps to control access to broadcast programs:
  • Each user obtains the individual key on the customer station. This key is unique for each terminal and is individualised using internal data that is specific to the customer terminal. The two prior steps (sale of reservation tickets and exchange of these tickets for an individual key) are necessary to access an event controlled audiovisual broadcast, and to obtain the parameters necessary for descrambling the broadcast program.
  • the gateway 14 distributes reservation tickets after a user has purchased an event. Tickets are managed (generation, distribution) in the gateway 14 . It is checked that the tickets have been generated and are unique before programs are distributed. All sold tickets are memorised in a database that contains the reservation tickets for events in progress and for future events. After the date of the event, the service is no longer supplied and memorised tickets are automatically deleted from the database.
  • FIG. 2 illustrates the reservation procedure according to an embodiment of the invention in which the user sends (arrow 20 ) a request to purchase one or more reservation tickets through the Internet network 2 to the gateway 14 .
  • the gateway 14 generates reservation numbers and returns (arrow 22 ) one or more reservation numbers to the customer terminal 4 .
  • FIG. 3 illustrates the procedure for exchanging a reservation ticket with an individual key using this embodiment.
  • the user sends (arrow 24 ) an individual key request to the gateway 14 .
  • This request includes the number of the reservation ticket specific to a given program and thus the @TERMINAL address of the customer terminal 4 .
  • the gateway 14 manages one or more individual keys K and transmits them (arrow 26 ) to the user's terminal 4 .
  • the individual key(s) K is (are) generated when a user would like to display an event by exchanging a reservation ticket.
  • the user supplies the terminal address (@Terminal) and the ticket number (ticket number) during the exchange request.
  • the individual key is calculated as a function of this address.
  • FIG. 4 represents a function block diagrammatically illustrating the calculation of the individual key.
  • a software module generates a control word CW (step 30 ) at random, with a first random digital data ALEA 1 (step 32 ).
  • the random data ALEA 1 is then used to encrypt the address (@Terminal 34 ) of the user terminal 4 , using a first function F.
  • the encryption result is a digital sequence S given by the following expression:
  • the address ( ⁇ TERMINAL) of the customer terminal in the network may be replaced by any parameter distinctive of this terminal in the network.
  • the associated individual key(s) K are stored in the terminal of this customer.
  • Communication between firstly the gateway 14 , the broadcaster 6 and secondly the scrambling platform 16 is made by defining an API (Application Programming Interface) user interface, between the transmission point equipment (Gateway 14 /servers 6 ) and the scrambling platform 16 to exchange parameters associated with the service or to request random generation of data ALEA 1 and a control word CW when a service is created or when keys are changed.
  • API Application Programming Interface
  • the gateway 14 notifies the scrambling platform 16 about the different broadcast services.
  • a MultiCast address is assigned for each service.
  • a service contains several elementary throughputs (audio, basic video, enhanced video) to improve the reception quality of high range receivers that could process them. These elementary throughputs are either broadcast separately on the network 2 by using different destination ports, or are multiplexed to transmit only one throughput on a given port.
  • the scrambling platform 16 manages data to be scrambled in service tables associating services, random data ALEA 1 broadcast in the signal, control words CW for the MultiCast addresses and ports assigned to the services.
  • These tables are composed of a service location table I, a so-called profiles table II and an associations table III.
  • the services location table I stores elementary throughputs of one or more services declared through the reservation gateway 14 .
  • the profiles table II stores scrambling parameters (ALEA+CW) generated on the reservation gateway request 14 .
  • the associations table III provides information about the current profile used in the crypto period being scrambled, for each elementary throughput.
  • Unencrypted IP/UDP datagrams supplied by the data server 6 are input to the scrambling platform 16 .
  • the scrambling platform 16 Depending on the addresses and destination ports present in the header of the IP/UDP datagrams, the scrambling platform 16 :
  • the customer terminal 4 cannot calculate the control word CW until it has received the random data ALEA 1 , in other words at the same time that it needs it to descramble the received data.
  • the CW cannot be calculated without the individual key K and the individual address @TERMINAL of the customer terminal. This provides a means of detecting the origin of an illicit copy of an individual key, which is indissociable from the unique identifier of the customer terminal to which it was assigned. If such a type of fraud is detected, the customer terminal at which the fraud is made is automatically excluded from broadcasting of later individual key sets.
  • control word CW is calculated by a decryption function G′ as a function of the individual key K received in unicast and the digital sequence S calculated as a function of the random variable ALEA 1 received with the scrambled program and the @TERMINAL address.
  • a second random data ALEA 2 is combined with the control word CW to obtain a new scrambling/descrambling key that is transmitted to the customer terminal 4 at the same time as the random data ALEA 1 .
  • This new data ALEA 2 is used like an additional descrambling key and can be modified at specifically determined times, for example when sending a new datagram.
  • the customer terminal receives scrambled or unscrambled datagrams. It analyses all these frames. If an IP/UDP datagram has a MultiCast address and the port corresponding to the chosen service, it:
  • the method described above may be used when making an isolated broadcasting of an event.
  • a single individual key will be generated with a life equal to the duration of the event.
  • this individual key may be replaced several times for the duration of the event.
  • the contents distributor proposes reception of a TV channel on a customer terminal. Its display depends on a subscription being purchased, to access the program for a given period regardless of the contents.
  • the reservation ticket is treated like the purchase of this subscription.
  • Each subscription renewal will be made after purchasing a reservation ticket.
  • the first individual key will be distributed during exchange of the ticket corresponding to the purchased validation period.
  • control word changes will be necessary to secure reception of the program broadcast on all customer terminals for which rights were purchased.
  • the change to the control word comprises the following steps:
  • [0179] transmit a change control word indicator to each terminal with the scrambled program, such that the customer terminal uses the even control word if the value assigned to the crypto-period is even, and the odd control word if the value assigned to the crypto-period is odd.
  • the change control word indicator is a digital value that changes parity every time the crypto-period is changed.
  • the data throughput is transmitted on the same MultiCast address as video or audio data but with a different port number.
  • This throughput will be identified in the SDP (Session Description Protocol) file or in the signalling throughput.
  • the terminal determines the time at which the new control word CW should be used.
  • the customer terminal uses the even control word (CW 0 , CW 2 , etc.) and if the value assigned to the crypto-period CP i is odd, the customer terminal uses the odd control word (CW 1 , CW 3 , etc.).
  • the individual keys are not necessarily broadcast synchronously with the crypto-period changes indicated in the signal representing the audiovisual program.
  • a second information will be used in the signal to indicate the moment at which customer terminals 4 must retrieve the individual key for the next crypto-period.
  • the diagram shown in FIG. 6 specifies operation of the system at the time that the key is changed.
  • a subscription duration D located between a first date d 1 and a final date d 2 is broken down into a sequence of four phases (p 0 , p 1 , p 2 , p 3 ) each corresponding to a crypto-period.
  • the binary value 0 (reference 50 ) is assigned to even pairs p 0 and p 2
  • the binary value 1 (reference 52 ) is assigned to odd phases p 1 and p 3 .
  • a series of pairs of control words (CW 0 , CW 1 ), (CW 2 , CW 1 ), (CW 2 , CW 3 ), (CW 4 , CW 3 ) is transmitted in the form of a sequence of pairs of individual keys (K 0 , K 1 ), (K 2 , K 1 ), (K 2 , K 3 ), (K 4 , K 3 ) to customer terminals with times t1, t2, t3 and t4 for successive changes of the control word. Terminals receive the pair of words in the individual key (K 0 , K 1 ) and use K 0 throughout the first phase p 0 .
  • Terminals will use the odd control word K 1 during the odd phase p 1 . The same procedure is used during subsequent phases.
  • individual keys are retrieved by making a connection with the gateway 14 and then, if the customer terminal identifies an even phase datagram, it uses the even control word until the next change, and if it identifies an odd phase datagram, it uses the odd control word until the next change.
  • event 1 sports
  • event 2 cinema
  • event 3 news
  • Each event in this broadcast will be linked to a key change.
  • this information must be known and adapted to make it transmittable in the signal coded according to MPEG4 standard.

Abstract

This invention relates to a method for transmission of digital data with access control to at least one terminal connected to a data exchange network (2), characterised in that it consists in:
scrambling data to be transmitted using a control word CW,
generating a digital sequence S for the terminal (4) calculated as a function of a first random data ALEA1 and data distinctive to the terminal in the network,
calculating at least one specific digital key K for the terminal (4) as a function of the digital sequence S and the control word CW,
transmitting the corresponding specific digital key K to the terminal (4).

Description

    TECHNICAL DOMAIN
  • The invention is in the domain of broadcasting and access control to digital data, events, audiovisual programs and thematic channels broadcast in an environment open to terminals that do not have a security processor. [0001]
  • More particularly, the invention relates to a broadcasting method and system with access control to audiovisual programs to several terminals connected to an IP type network. [0002]
    • STATE OF PRIOR ART
  • The DVB (Digital Video Broadcasting) standard includes an access control mechanism in which scrambling/descrambling information is transmitted to subscribers with ECM and EMM (Entitlement Control Message and Entitlement Management Message respectively) access control messages, and is stored in a memory card. This information comprises an encrypted control word CW that periodically changes, for example every ten seconds. A new control word corresponding to the same program or to a new program is transmitted to subscribers with ECM access control messages. [0003]
  • For example, ECMs are renewed every ten seconds and each ECM comprises three fields, a first field containing access parameters that define conditions of access to the scrambled program, for example such as parental control or geographic limitation of reception of the scrambled program, a second field comprising the control word CW encrypted by an operations key and a third field containing integrity checking parameters for the transmitted information. [0004]
  • EMMs generally comprise three fields, a first address field to select a decoder for a user or a user group, a second field containing access authorisation for the user or users, containing the operations key encrypted by a group key previously distributed to a subscriber group, and a third field containing integrity checking parameters for the transmitted information. [0005]
  • EMMs are transmitted before the programs to which they are applicable and are stored in a smart card. [0006]
  • When a decoder receives an EMM containing the encrypted operations key corresponding to its group, it checks whether or not this key has already been stored. If not, the operations key is decrypted by the inverse function of the encryption function and is then stored. In general, the decoder is composed of a terminal and a smart card integrating the security processor. And when the scrambled program is broadcast, the operations key is used to decrypt the control word CW associated with it and that is sent to subscribers through ECMs or written as soon as the receiver is initialised. [0007]
  • In the system described above, a subscriber needs to have equipment that generally comprises a security processor included in a smart card containing access parameters defining access rights to scrambled programs, in order to access the scrambled programs. [0008]
  • The access control system described above is not suitable for broadcasting through the Internet network since it would be unthinkable to distribute a smart card reader to every user connected to the networks due to the large number of potential subscribers and the geographic dispersion of these subscribers. [0009]
  • The purpose of the invention is to make a method of controlling access to scrambled data that might be read using terminals that do not include a security processor or a smart card. [0010]
  • More specifically, this method is applicable to two types of services; event-controlled broadcasting and broadcasting of television program channels. [0011]
  • Event-controlled broadcasting requires one channel for each event (music concert, sports event, training, etc.). [0012]
  • Broadcasting of television program channels relates to: [0013]
  • rebroadcasting of television channel programs, [0014]
  • rebroadcasting of channel programs by general subscription, [0015]
  • rebroadcasting of channels by general subscription with one or more thematic subscriptions, [0016]
  • creation and broadcasting of a channel including sequencing of its contents specific for subscription, [0017]
  • creation and broadcasting of a channel including sequencing of its contents specific for personnel, [0018]
  • creation and broadcasting of a channel including sequencing of its contents specific for the public. [0019]
    • PRESENTATION OF THE INVENTION
  • The method according to the invention comprises three steps: [0020]
  • a first scrambling step consisting in: [0021]
  • scrambling digital data to be transmitted using a control word CW, [0022]
  • generating a digital sequence S for the terminal calculated as a function of a first random data ALEA[0023] 1 and of data distinctive of the terminal in the network,
  • calculating at least one specific digital key K for the terminal as a function of the digital sequence S and of the control word CW, [0024]
  • transmitting the corresponding specific digital key K to the terminal, [0025]
  • a second broadcasting step consisting in: [0026]
  • transmitting scrambled digital data and the first random digital data ALEA[0027] 1 to the terminal,
  • and a third descrambling step consisting in: [0028]
  • reconstituting the digital sequence S using the random data ALEA[0029] 1 and the address of the terminal in the data exchange network,
  • decrypting the control word CW starting from the sequence S and the specific digital key K, [0030]
  • descrambling the scrambled digital data. [0031]
  • According to the invention, the method also comprises the following preliminary steps: [0032]
  • assign a reservation number to every user who has already reserved an access right to a service supplied through the network, [0033]
  • transmit the specific digital key K to this user in exchange for the said reservation number and the said digital data distinctive of the terminal in the network. [0034]
  • Preferably, the digital data distinctive of the terminal is the address of this terminal in the network. [0035]
  • According to the invention, the scrambled digital data are transmitted either by radio channel or by wire or by digital cable, or by a recording media. [0036]
  • According to the invention, the data exchange network is of the IP type. [0037]
  • According to the invention, the control word CW is preferably generated in a random manner. [0038]
  • According to the invention, the reservation number and the terminal address in the network are transmitted by the terminal user to the digital data supplier using the TCP/IP protocol. [0039]
  • According to the invention, the digital data may for example be audiovisual programs. [0040]
  • The method according to the invention comprises an additional step consisting in transmitting a second random data with the scrambled digital data to make a distinction between the scrambling/descrambling steps using an identical control word CW. [0041]
  • The method according to the invention comprises a step consisting in assigning a MultiCast address to each service supplied through the network and storing the MultiCast address, the random data (ALEA[0042] 1) and the corresponding control words, CW in a services table.
  • According to the invention, the (ALEA[0043] 1, CW) pair is changed regularly.
  • The validity duration of this pair may be fixed or variable. [0044]
  • In one particular application of the invention, each broadcast service comprises a plurality of elementary audio, basic video and enhanced video throughputs. [0045]
  • In this application, the scrambling step comprises the following sub-steps: [0046]
  • filter MultiCast address datagrams to be scrambled as a function of addresses and destination ports present in the header of the said datagrams, [0047]
  • scramble each datagram received at the input using the control word associated with the service, [0048]
  • add a header specific to access control to each datagram, [0049]
  • build a second datagram with an IP header containing the MultiCast address of the service, the Destination address, a destination port number dedicated to the descrambler and a useful content containing the scrambled input datagram and the header specific to the access control. [0050]
  • According to one variant embodiment of the invention, the broadcasting step consists in transmitting the second IP datagram through the IP network. [0051]
  • In this variant, the second IP datagram uses the UDP transport protocol, and the descrambling step comprises the following sub-steps: [0052]
  • analyse all received datagrams and, if one datagram has the MultiCast address and the port corresponding to the chosen service, then [0053]
  • delete the header specific to the access control, [0054]
  • descramble the useful content, [0055]
  • reinject the descrambled useful content onto the IP stack for processing by an application display module. [0056]
  • In a first case, the elementary audio and video throughputs of a given service are broadcast separately on the network using different destination ports. In this case, only the basic audio and video data are scrambled. The enhanced video data may or may not be scrambled. [0057]
  • In a second case, the elementary audio and video throughputs of a given service are multiplexed so that they only transmit a single service throughput on a given port. In this case, only the service throughput is scrambled. [0058]
  • The method according to the invention is implemented in a transmission system with access control of digital data scrambled by a control word CW to at least one terminal connected to a data exchange network comprising: [0059]
  • a reservation gateway, [0060]
  • a platform designed to scramble digital data to be transmitted, [0061]
  • a server designed to broadcast scrambled data. [0062]
  • According to the invention, the reservation gateway comprises: [0063]
  • means of generating a digital sequence S for the terminal as a function of a random data ALEA[0064] 1 and data distinctive of the terminal in the network,
  • means of calculating a specific digital key K for the terminal, as a function of the digital sequence S and the control word CW. [0065]
  • According to the invention, the reservation gateway comprises: [0066]
  • means of assigning a reservation number to any user who has previously reserved an access right to a service supplied through the network, [0067]
  • means of transmitting the specific digital key K to this user in exchange for the said reservation number and the said digital data distinctive of the terminal in the network. [0068]
  • According to the invention, the reservation gateway also comprises a database designed to store a plurality of reservation numbers each corresponding to a specific individual key. [0069]
  • According to the invention, the reservation gateway comprises means of assigning a MultiCast address to each service supplied through the network and a memory containing a services table associating the corresponding MultiCast address, port, random data (ALEA[0070] 1) and control word CW. Preferably, the (ALEA1, CW) pair is changed regularly.
  • Preferably, the control word CW is generated at random. [0071]
  • In one particular embodiment of the invention, the digital data represent audiovisual programs. [0072]
  • In this embodiment of the invention, the data exchange network is of the IP type and the said scrambling platform also comprises: [0073]
  • means of filtering IP datagrams of MultiCast addresses to be scrambled as a function of the addresses and destination ports present in the header of the said datagrams, [0074]
  • means of scrambling each datagram received at the input, using the control word associated with the service, [0075]
  • means of adding a header specific to the access control, to each datagram, [0076]
  • means of building a second datagram, with an IP header containing the MultiCast address of the service, the Destination address, a destination port number dedicated to the descrambler and a useful content containing the scrambled input datagram and the header specific to the access control. [0077]
  • The invention also relates to a scrambled digital data reception device comprising: [0078]
  • means of analysing all received datagrams, and if a datagram possesses the MultiCast address and the port corresponding to the chosen service, then [0079]
  • means of eliminating the header specific to access control, [0080]
  • means of descrambling the useful content, [0081]
  • means of reinjecting the descrambled useful content onto the IP stack through a port dedicated to processing and display of the received program. [0082]
  • The process according to the invention enables: [0083]
  • established operators (radio, television) [0084]
  • to broaden their audience, [0085]
  • to broaden their geographic coverage area, [0086]
  • to enrich their marketing offers, [0087]
  • to offer a personalised service (OnDemand video) due to interactivity. [0088]
  • new operators (specific content) [0089]
  • to offer theme contents, [0090]
  • to offer live programs not marketed by television operators (concert, sports, etc.), [0091]
  • to offer an internal communication media (employee) or external communication media (supplier) for companies. [0092]
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • Other characteristics and advantages of the invention will become clear from the following description, given as a non-limitative example with reference to the attached drawings in which: [0093]
  • FIG. 1 shows a broadcasting system according to the invention; [0094]
  • FIGS. 2 and 3 diagrammatically show two steps in initialisation of the method according to the invention; [0095]
  • FIG. 4 shows a block diagram illustrating a preferred embodiment of the method according to the invention; [0096]
  • FIGS. 5 and 6 diagrammatically illustrate a process for changing control words according to the invention.[0097]
    • DETAILED PRESENTATION OF PARTICULAR EMBODIMENTS
  • FIG. 1 diagrammatically shows a system that broadcasts scrambled audiovisual programs or thematic channels through the [0098] Internet network 2 to terminals 4 without necessarily having a security processor.
  • This system comprises a [0099] MultiCast broadcasting server 6 that transmits a single data packet to the terminals 4. The server 6 is connected to an antenna 8 for reception of audiovisual programs transmitted according to the MPEG2/MPEG4 standard, or to a database 10 or a source of television programs such as a pick-up camera 12. The server 6 is also connected to an audiovisual programs reservation gateway 14 and a scrambling platform 16.
  • The [0100] reservation gateway 14 is a computer containing software used to manage a presentation page of a commercial offer of audiovisual programs and to generate reservation numbers for access rights to these programs.
  • The [0101] scrambling platform 16 is connected to a computer comprising cryptographic software containing an encryption function G used to calculate individual keys.
  • [0102] Customer terminals 4 comprise software using a decryption function used to rebuild control words CW.
  • The process according to the invention will now be described with reference to FIGS. [0103] 2 to 6.
  • In one preferred embodiment of the invention, the process according to the invention is based on an “IP to UDP tunnel” solution, in other words an incoming IP/UDP datagram that is scrambled and then encapsulated in a new output IP/UDP datagram. This solution is described in a French patent application entitled “METHOD, SYSTEM AND DEVICE FOR CONDITIONAL ACCESS TO IP SERVICES” deposited by FRANCE TELECOM and registered as number 01 05318. [0104]
  • When a controlled audiovisual service is created, content distributors define the service input parameters (MultiCast address, etc.). [0105]
  • The customer station uses the method described in this application to descramble IP/UDP datagrams received through the network, to extract service input parameters and to present unencrypted broadcast programs to application level to display them. [0106]
  • Reserving an Access Right [0107]
  • The method according to the invention uses two preliminary steps to control access to broadcast programs: [0108]
  • the sale of reservation tickets represented by reservation numbers stored in the reservation gateway, [0109]
  • exchange of the ticket for one or more individual keys. [0110]
  • These two steps are independent. Obtaining a reservation key can: [0111]
  • be made some time before the broadcasting date of an event, [0112]
  • be made on a customer station other than the station used for the display, [0113]
  • originate from an advertising campaign, [0114]
  • be provided free of charge, [0115]
  • etc. [0116]
  • Each user obtains the individual key on the customer station. This key is unique for each terminal and is individualised using internal data that is specific to the customer terminal. The two prior steps (sale of reservation tickets and exchange of these tickets for an individual key) are necessary to access an event controlled audiovisual broadcast, and to obtain the parameters necessary for descrambling the broadcast program. [0117]
  • Generating a Reservation Ticket [0118]
  • The [0119] gateway 14 distributes reservation tickets after a user has purchased an event. Tickets are managed (generation, distribution) in the gateway 14. It is checked that the tickets have been generated and are unique before programs are distributed. All sold tickets are memorised in a database that contains the reservation tickets for events in progress and for future events. After the date of the event, the service is no longer supplied and memorised tickets are automatically deleted from the database.
  • FIG. 2 illustrates the reservation procedure according to an embodiment of the invention in which the user sends (arrow [0120] 20) a request to purchase one or more reservation tickets through the Internet network 2 to the gateway 14. The gateway 14 generates reservation numbers and returns (arrow 22) one or more reservation numbers to the customer terminal 4.
  • FIG. 3 illustrates the procedure for exchanging a reservation ticket with an individual key using this embodiment. [0121]
  • The user sends (arrow [0122] 24) an individual key request to the gateway 14. This request includes the number of the reservation ticket specific to a given program and thus the @TERMINAL address of the customer terminal 4.
  • When a user exchanges a reservation ticket to obtain an individual key, the @TERMINAL address that is the unique identifier of the user is registered in the database. [0123]
  • The [0124] gateway 14 manages one or more individual keys K and transmits them (arrow 26) to the user's terminal 4.
  • Generation and Distribution of the Individual Key(s) [0125]
  • The individual key(s) K is (are) generated when a user would like to display an event by exchanging a reservation ticket. The user supplies the terminal address (@Terminal) and the ticket number (ticket number) during the exchange request. The individual key is calculated as a function of this address. [0126]
  • Calculating the Individual Key [0127]
  • FIG. 4 represents a function block diagrammatically illustrating the calculation of the individual key. [0128]
  • A software module generates a control word CW (step [0129] 30) at random, with a first random digital data ALEA1 (step 32). The random data ALEA1 is then used to encrypt the address (@Terminal 34) of the user terminal 4, using a first function F. The encryption result is a digital sequence S given by the following expression:
  • S=F( ALEA 1,@TERMINAL).
  • Note that the address (©TERMINAL) of the customer terminal in the network may be replaced by any parameter distinctive of this terminal in the network. [0130]
  • The next step consists of defining a specific digital key K=G (S, CW) resulting from encryption by the digital sequence S of the control word CW using a second function G. [0131]
  • When the customer asks that a reservation ticket should be exchanged for one or more individual keys K, this request is transmitted (arrow [0132] 42) to the customer terminal 4 in unicast through the Internet network before the scrambled programs are broadcast.
  • For each event purchased by a customer, the associated individual key(s) K are stored in the terminal of this customer. [0133]
  • Communication Between the [0134] Gateway 14/Broadcaster 6 and the scrambling platform 16
  • Communication between firstly the [0135] gateway 14, the broadcaster 6 and secondly the scrambling platform 16 is made by defining an API (Application Programming Interface) user interface, between the transmission point equipment (Gateway 14/servers 6) and the scrambling platform 16 to exchange parameters associated with the service or to request random generation of data ALEA1 and a control word CW when a service is created or when keys are changed.
  • Management of Services [0136]
  • The [0137] gateway 14 notifies the scrambling platform 16 about the different broadcast services. A MultiCast address is assigned for each service. A service contains several elementary throughputs (audio, basic video, enhanced video) to improve the reception quality of high range receivers that could process them. These elementary throughputs are either broadcast separately on the network 2 by using different destination ports, or are multiplexed to transmit only one throughput on a given port.
  • In the first case, only the audio and basic audio and video data are scrambled. Enhanced data may be scrambled or not scrambled. [0138]
  • In the second case, only the service throughput is scrambled. [0139]
  • The [0140] scrambling platform 16 manages data to be scrambled in service tables associating services, random data ALEA1 broadcast in the signal, control words CW for the MultiCast addresses and ports assigned to the services.
  • These tables are composed of a service location table I, a so-called profiles table II and an associations table III. [0141]
  • Example service tables [0142]
    TABLE I
    Service location
    Service_Id @Multicast No_Port
    1 X 2
    1 X 3
  • [0143]
    TABLE II
    Profiles table
    Profile_CA_Id ALEA CW
    10 AA AA AA AA BB BB BB BB
    AA AA AA AA BB BB BB BB
    11 CC CC CC CC DD DD DD DD
    CC CC CC CC DD DD DD DD
    12 EE EE EE EE AA AA AA AA
    EE EE EE EE AA AA AA AA
    13 FF FF FF FF CC CC CC CC
    FF FF FF FF CC CC CC CC
    14 FF FF FF FF CC CC CC CC
    FF FF FF FF CC CC CC CC
  • [0144]
    TABLE III
    Association table
    @Multicast No_Port Profile_CA_Id (current
    X
    2 10
    X 3 10
  • The services location table I stores elementary throughputs of one or more services declared through the [0145] reservation gateway 14.
  • The profiles table II stores scrambling parameters (ALEA+CW) generated on the [0146] reservation gateway request 14.
  • The associations table III provides information about the current profile used in the crypto period being scrambled, for each elementary throughput. [0147]
  • Scrambling of IP/UDP Datagrams Output from the Server [0148]
  • Unencrypted IP/UDP datagrams supplied by the [0149] data server 6 are input to the scrambling platform 16. Depending on the addresses and destination ports present in the header of the IP/UDP datagrams, the scrambling platform 16:
  • filters IP/UDP datagrams from @MultiCast to be scrambled. These addresses are contained in the above services table, [0150]
  • scrambles the IP/UDP datagram received in the input using the control word associated with the service, [0151]
  • adds a header specific to the access control to the scrambled datagram, builds a second IP/UDP datagram with: [0152]
  • an IP header containing the MultiCast address of the service as the Destination address, [0153]
  • a port number dedicated to the descrambler as the destination port, [0154]
  • a useful content containing the IP/UDP scrambled input datagram (including header). [0155]
  • Remember that the random data ALEA[0156] 1 is broadcast with the scrambled program and customers who have exchanged their reservation ticket will receive their individual key K in exchange.
  • Decrypting the Control Word [0157]
  • The [0158] customer terminal 4 cannot calculate the control word CW until it has received the random data ALEA1, in other words at the same time that it needs it to descramble the received data. The CW cannot be calculated without the individual key K and the individual address @TERMINAL of the customer terminal. This provides a means of detecting the origin of an illicit copy of an individual key, which is indissociable from the unique identifier of the customer terminal to which it was assigned. If such a type of fraud is detected, the customer terminal at which the fraud is made is automatically excluded from broadcasting of later individual key sets.
  • As explained above, the control word CW is calculated by a decryption function G′ as a function of the individual key K received in unicast and the digital sequence S calculated as a function of the random variable ALEA[0159] 1 received with the scrambled program and the @TERMINAL address.
  • When the scrambled programs are broadcast, a second random data ALEA[0160] 2 is combined with the control word CW to obtain a new scrambling/descrambling key that is transmitted to the customer terminal 4 at the same time as the random data ALEA1. This new data ALEA2 is used like an additional descrambling key and can be modified at specifically determined times, for example when sending a new datagram.
  • Reception and Descrambling of Received Scrambled Programs [0161]
  • The customer terminal receives scrambled or unscrambled datagrams. It analyses all these frames. If an IP/UDP datagram has a MultiCast address and the port corresponding to the chosen service, it: [0162]
  • deletes the IP/UDP header added by the scrambler, [0163]
  • descrambles the useful content, [0164]
  • reinjects the unscrambled useful content, in other words the IP/UDP header and the unencrypted content of the datagram on the IP stack through a port of the customer terminal dedicated to display of the received program. [0165]
  • The method described above may be used when making an isolated broadcasting of an event. In this case, a single individual key will be generated with a life equal to the duration of the event. However, this individual key may be replaced several times for the duration of the event. [0166]
  • Broadcasting a TV Channel [0167]
  • It is not appropriate to use a single key throughout the life of the event for this type of broadcast. The reception of a TV channel depends on subscriptions of a longer duration, for example monthly subscription, thematic subscription. To protect this reception method, it is essential that the control word CW should be changed as follows: [0168]
  • regularly in the case of a general subscription, [0169]
  • depending on broadcast contents, in the case of a thematic subscription. [0170]
  • General Subscription Mode [0171]
  • The contents distributor proposes reception of a TV channel on a customer terminal. Its display depends on a subscription being purchased, to access the program for a given period regardless of the contents. [0172]
  • For this type of subscription, the reservation ticket is treated like the purchase of this subscription. Each subscription renewal will be made after purchasing a reservation ticket. The first individual key will be distributed during exchange of the ticket corresponding to the purchased validation period. During the validity period of this subscription, control word changes will be necessary to secure reception of the program broadcast on all customer terminals for which rights were purchased. [0173]
  • In one variant embodiment illustrated in FIGS. 5 and 6, the change to the control word comprises the following steps: [0174]
  • break down the subscription period into a series of crypto-periods CP[0175] i, each corresponding to the life of a control word,
  • assign an even value to a crypto-period CP[0176] i and an odd value to the next crypto-period CPi+1, or an odd value to a crypto-period CPi and an even value to the next crypto-period CPi+1,
  • generate at least one even control word and at least one odd control word to be used, for each crypto-period CP[0177] i,
  • transmit individual keys corresponding to the existing crypto-period and subsequent crypto-periods to rebuild even control words and the odd control word to be used, to each terminal, [0178]
  • transmit a change control word indicator to each terminal with the scrambled program, such that the customer terminal uses the even control word if the value assigned to the crypto-period is even, and the odd control word if the value assigned to the crypto-period is odd. [0179]
  • The change control word indicator is a digital value that changes parity every time the crypto-period is changed. [0180]
  • Preferably, the data throughput is transmitted on the same MultiCast address as video or audio data but with a different port number. This throughput will be identified in the SDP (Session Description Protocol) file or in the signalling throughput. [0181]
  • Starting from the parity change indicator supplied with the scrambled program, the terminal determines the time at which the new control word CW should be used. [0182]
  • If the value assigned to the crypto-period CP[0183] i is even, the customer terminal uses the even control word (CW0, CW2, etc.) and if the value assigned to the crypto-period CPi is odd, the customer terminal uses the odd control word (CW1, CW3, etc.).
  • The individual keys are not necessarily broadcast synchronously with the crypto-period changes indicated in the signal representing the audiovisual program. A second information will be used in the signal to indicate the moment at which [0184] customer terminals 4 must retrieve the individual key for the next crypto-period.
  • Every time that this information changes, the customer terminal must retrieve the individual key for the next crypto-period. [0185]
  • The diagram shown in FIG. 6 specifies operation of the system at the time that the key is changed. [0186]
  • In this figure, a subscription duration D located between a first date d[0187] 1 and a final date d2 is broken down into a sequence of four phases (p0, p1, p2, p3) each corresponding to a crypto-period. The binary value 0 (reference 50) is assigned to even pairs p0 and p2, and the binary value 1 (reference 52) is assigned to odd phases p1 and p3. Throughout the duration D of the subscription, a series of pairs of control words (CW0, CW1), (CW2, CW1), (CW2, CW3), (CW4, CW3) is transmitted in the form of a sequence of pairs of individual keys (K0, K1), (K2, K1), (K2, K3), (K4, K3) to customer terminals with times t1, t2, t3 and t4 for successive changes of the control word. Terminals receive the pair of words in the individual key (K0, K1) and use K0 throughout the first phase p0.
  • Terminals will use the odd control word K[0188] 1 during the odd phase p1. The same procedure is used during subsequent phases.
  • Thus, whenever a connection to the TV channel is made, in other words after the reservation ticket has been exchanged for an individual key, the customer terminal retrieves the “even and odd” individual keys to be used. [0189]
  • Two solutions could be envisaged for this retrieval: [0190]
  • individual keys are retrieved in the data throughput before beginning descrambling of IP/UDP datagrams. This solution is possible if the number of potential users is not very high, [0191]
  • individual keys are retrieved by making a connection with the [0192] gateway 14 and then, if the customer terminal identifies an even phase datagram, it uses the even control word until the next change, and if it identifies an odd phase datagram, it uses the odd control word until the next change.
  • Thematic Subscription [0193]
  • The process described above can be used in this subscription mode. [0194]
  • However, for a program broadcast with this subscription type, all broadcast events and their theme have to be identified. For example, event [0195] 1 (sports), event 2 (cinema), event 3 (news), etc. Each event in this broadcast will be linked to a key change.
  • For transmission equipment, this information must be known and adapted to make it transmittable in the signal coded according to MPEG4 standard. [0196]

Claims (37)

1. Method for transmission of digital data with access control to at least one terminal (4) connected to a data exchange network (2), characterised in that it comprises three steps:
a first scrambling step consisting in:
scrambling digital data to be transmitted using a control word CW,
generating a digital sequence S for each terminal calculated as a function of a first random data ALEA1 and of data distinctive of the terminal in the network,
calculating at least one specific digital key K for the terminal (4) as a function of the digital sequence S and the control word CW,
transmitting the corresponding specific digital key K to the terminal (4),
a second broadcasting step consisting in:
transmitting scrambled digital data and the random digital data ALEA1 to the terminal (4),
and a third descrambling step consisting in:
reconstituting the digital sequence S using the random data ALEA 1 and the address of the terminal in the network (2),
decrypting the control word CW starting from the sequence S and the specific digital key K,
descrambling the transmitted digital data.
2. Method according to claim 1, characterised in that it also comprises the following steps:
assign a reservation number to every user who has already reserved an access right to a service supplied through the network (2),
transmit the specific digital key K to this user in exchange for the said reservation number and the said digital data distinctive of the terminal in the network (2).
3. Method according to claim 2, characterised in that the digital data are transmitted either by radio channel or by wire or by digital cable, or by a recording media of digital data.
4. Method according to claim 2, characterised in that the data exchange network (2) is of the IP type.
5. Method according to claim 4, characterised in that the distinctive digital data is the address of the terminal in the network (2).
6. Method according to claim 1, characterised in that the control word CW is generated at random.
7. Method according to claim 2, characterised in that the reservation number and the address of the terminal in the network (2) are transmitted by the terminal user to the program supplier using the TCP/IP protocol.
8. Method according to claim 1, characterised in that the digital data are audiovisual programs.
9. Method according to claim 1 characterised in that it comprises an additional step consisting in transmitting a second random data (ALEA2) with the scrambled digital data to be used as an additional descrambling key in combination with the control word CW.
10. Method according to claim 4, characterised in that it comprises a step consisting in assigning a Multicast address to each service supplied through the network (2) and storing the Multicast address, the corresponding random data (ALEA1) and the control word CW in a services table.
11. Method according to claim 10, characterised in that the (ALEA1, CW) pair is changed regularly.
12. Method according to claim 10, characterised in that each broadcast service comprises a plurality of elementary audio, basic video and enhanced video throughputs.
13. Method according to claim 12, characterised in that the scrambling step comprises the following sub-steps:
filter MultiCast address IP datagrams to be scrambled as a function of addresses and destination ports present in the header of the said datagrams,
scramble each datagram received at the input using the control word associated with the service,
add a header specific to access control to each datagram,
build a second IP datagram with an IP header containing the MultiCast address of the service, the Destination address, a destination port number dedicated to the descrambler and a useful content containing the scrambled input datagram and the header specific to the access control.
14. Method according to claim 13, characterised in that the broadcasting step consists of transmitting the second IP datagram through the IP network.
15. Method according to claim 14, characterised in that the second IP datagram uses the UDP transport protocol.
16. Method according to claim 13, characterised in that the descrambling step comprises the following sub-steps:
analyse all received datagrams and, if one datagram has the MultiCast address and the port corresponding to the chosen service, then
delete the header specific to the access control,
descramble the useful content,
reinject the descrambled useful content onto the IP stack through a port dedicated to processing and display of the received program.
17. Method according to claim 16, characterised in that the elementary audio and video throughputs for a given service are broadcast separately on the network by using different destination ports.
18. Method according to claim 16, characterised in that the elementary audio and video throughputs for a given service are multiplexed to transmit only one service throughput on a given port.
19. Method according to claim 17, characterised in that only the audio and basic video data are scrambled.
20. Transmission system with access control of digital data scrambled by a control word CW to at least one terminal (4) connected to a data exchange network (2) comprising:
a reservation gateway (14),
a platform (16) designed to scramble data to be transmitted,
a server (6) designed to broadcast scrambled data, system characterised in that the reservation gateway (14) comprises:
means of generating a digital sequence S as a function of a random data ALEA1 and data distinctive of the terminal in the network (2),
means of calculating a specific digital key K for the terminal (4), as a function of the digital sequence S and the control word CW.
21. System according to claim 20, characterised in that the said distinctive data of the terminal in the network (2) consists of the address of the terminal in this network.
22. System according to claim 21, characterised in that the said reservation gateway comprises:
means of assigning a reservation number to any user who has previously reserved an access right to a service supplied through the network (2),
means of transmitting the specific digital key K to this user in exchange for the said reservation number and the said digital data distinctive of the terminal in the network (2).
23. System according to claim 22, characterised in that the said reservation gateway (14) also comprises a database designed to store a plurality of reservation numbers each corresponding to a specific key.
24. System according to claim 21, characterised in that the data exchange network (2) is of the IP type.
25. System according to claim 24, characterised in that the said reservation gateway (14) comprises means of assigning a MultiCast address to each service supplied through the network (2) and a memory containing a services table associating the corresponding MultiCast address, the random data (ALEA1) and the control word CW.
26. System according to claim 25, characterised in that the control word CW is generated at random.
27. System according to claim 21, characterised in that the digital data are audiovisual programs.
28. System according to claim 27, characterised in that the said scrambling platform (16) also comprises:
means of filtering IP datagrams of MultiCast addresses to be scrambled as a function of the addresses and destination ports present in the header of the said datagrams,
means of scrambling each IP datagram received at the input, using the control word associated with the service,
means of adding a header specific to the access control, to each IP datagram,
means of building a second datagram, with an IP header containing the MultiCast address of the service, the Destination address, a destination port number dedicated to the descrambler and a useful content containing the scrambled input datagram and the header specific to the access control.
29. System according to claim 28, characterised in that it comprises a reception device adapted for:
analysing all received IP datagrams, and if a datagram possesses the MultiCast address and the port corresponding to the chosen service, then
eliminating the header specific to access control,
descrambling the useful content,
reinjecting the descrambled useful content onto the IP stack through a port dedicated to processing and display of the received program.
30. Reception device for scrambled digital data, characterised in that it comprises:
means of analysing all received datagrams, and if a datagram possesses the MultiCast address and the port corresponding to the chosen service, then
means of eliminating the header specific to access control,
means of descrambling the useful content,
means of reinjecting the descrambled useful content onto the IP stack through a port dedicated to processing and display of the received program.
31. Method for changing the control word for access to scrambled data, characterised in that it comprises the following steps:
break down the subscription period into a series of crypto-periods CPi, each corresponding to the life of a control word (CWi),
assign an even value to a crypto-period CPi and an odd value to the next crypto-period CPi+1, or an odd value to a crypto-period CPi and an even value to the next crypto-period CPi+1,
generate at least one even control word and at least one odd control word for each crypto-period CPi,
transmit a data throughput containing the address of the terminal (4) to the terminal (4), and a random data ALEA1 to change control word parity,
transmit a change control word indicator to the terminal (4), such that this terminal (4) uses the even control word if the value assigned to the crypto-period is even, and the odd control word if the value assigned to the crypto-period is odd.
32. Method according to claim 31, characterised in that the data exchange network (2) is of the IP type.
33. Method according to claim 32, characterised in that exchanged digital data are audiovisual programs.
34. Method according to claim 31, characterised in that the change control word indicator is a digital value transmitted with the scrambled program that changes parity every time the crypto-period is changed.
35. Method according to claim 34, characterised in that after a reservation ticket has been exchanged for one or more specific individual keys K, the customer terminal (4) retrieves the encrypted even and odd individual keys in the data throughput before beginning descrambling of IP/UDP datagrams.
36. Method according to claim 35, characterised in that after each reservation ticket exchange, the customer terminal retrieves even and odd individual keys by connecting to the gateway (14).
37. Method according to claim 35, characterised in that the customer terminal (4) uses the even control word until the next value of the change indicator if it identifies an even phase datagram, or uses the odd control word until the next value of the change indicator if it identifies an odd phase datagram.
US10/493,933 2001-10-29 2002-10-24 Controlled-access method and system for transmitting scrambled digital data in a data exchange network Abandoned US20040243803A1 (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
FR0113963A FR2831737B1 (en) 2001-10-29 2001-10-29 TRANSMISSION METHOD AND SYSTEM WITH CONTROLLING ACCESS OF DIGITAL DIGITAL DATA IN A DATA EXCHANGE NETWORK
FR0113963 2001-10-29
PCT/FR2002/003655 WO2003039153A2 (en) 2001-10-29 2002-10-24 Controlled-access method and system for transmitting scrambled digital data in a data exchange network

Publications (1)

Publication Number Publication Date
US20040243803A1 true US20040243803A1 (en) 2004-12-02

Family

ID=8868831

Family Applications (1)

Application Number Title Priority Date Filing Date
US10/493,933 Abandoned US20040243803A1 (en) 2001-10-29 2002-10-24 Controlled-access method and system for transmitting scrambled digital data in a data exchange network

Country Status (6)

Country Link
US (1) US20040243803A1 (en)
EP (1) EP1461951A2 (en)
JP (1) JP4520148B2 (en)
KR (1) KR100923479B1 (en)
FR (1) FR2831737B1 (en)
WO (1) WO2003039153A2 (en)

Cited By (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20070297605A1 (en) * 2006-06-26 2007-12-27 Sony Corporation Memory access control apparatus and method, and communication apparatus
US20100034389A1 (en) * 2007-03-13 2010-02-11 Oleg Veniaminovich Sakharov Conditional access system and method for limiting access to content in broadcasting and receiving systems
US20110311044A1 (en) * 2009-12-11 2011-12-22 Irdeto B.V. Providing control words to a receiver
WO2012102729A1 (en) * 2011-01-26 2012-08-02 Nagrastar L.L.C. Cascading dynamic crypto periods
US20130247217A1 (en) * 2007-11-15 2013-09-19 Salesforce.Com, Inc On-demand service security system and method for managing a risk of access as a condition of permitting access to the on-demand service
US20140136248A1 (en) * 2012-10-09 2014-05-15 Vendini, Inc. Ticket transfer fingerprinting, security, and anti-fraud measures
US8898753B1 (en) 2007-11-15 2014-11-25 Salesforce.Com, Inc. On-demand service security system and method for managing a risk of access as a condition of permitting access to the on-demand service
US20150319146A1 (en) * 2004-02-05 2015-11-05 Broadcom Corporation System and Method for Security Key Transmission With Strong Pairing to Destination Client
US9418208B2 (en) 2011-01-03 2016-08-16 Thomson Licensing Distribution of digital content protected by watermark-generating password
US9461825B2 (en) 2004-01-30 2016-10-04 Broadcom Corporation Method and system for preventing revocation denial of service attacks
US9608804B2 (en) 2004-01-30 2017-03-28 Avago Technologies General Ip (Singapore) Pte. Ltd. Secure key authentication and ladder system

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FR2833121B1 (en) 2001-12-05 2004-02-13 France Telecom METHOD FOR DISTRIBUTING ENCRYPTION KEYS FOR ENCRYPTED DIGITAL DATA
EP1545130A1 (en) * 2003-12-16 2005-06-22 Nagravision S.A. Process for updating access rights to conditional access data
EP1723791B1 (en) * 2004-03-10 2009-08-19 Nagravision S.A. Method of securing a scrambled content sent by a broadcaster
EP1605698A1 (en) * 2004-06-11 2005-12-14 Nagracard S.A. Security method for a broadcast service
KR101638285B1 (en) * 2015-04-09 2016-07-08 주식회사 아이두잇 Apparatus of supplying video signals received by satellite antenna to a plurality of user equipment and method thereof

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6105134A (en) * 1995-04-03 2000-08-15 Scientific-Atlanta, Inc. Verification of the source of program information in a conditional access system
US6466252B1 (en) * 1999-04-13 2002-10-15 Nec Corporation Video conference system, and its reservation server, control unit, video conference terminal equipment, and storage medium stored therein program thereof
US6877043B2 (en) * 2000-04-07 2005-04-05 Broadcom Corporation Method for distributing sets of collision resolution parameters in a frame-based communications network
US6879690B2 (en) * 2001-02-21 2005-04-12 Nokia Corporation Method and system for delegation of security procedures to a visited domain

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11122237A (en) * 1997-10-09 1999-04-30 Taisei Corp Ciphering device and data protection device
JP3816689B2 (en) * 1999-03-31 2006-08-30 株式会社東芝 Information distribution apparatus, information reception apparatus, and communication method
US6449719B1 (en) * 1999-11-09 2002-09-10 Widevine Technologies, Inc. Process and streaming server for encrypting a data stream
EP1130871A1 (en) * 2000-03-01 2001-09-05 BRITISH TELECOMMUNICATIONS public limited company Media session discovery

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6105134A (en) * 1995-04-03 2000-08-15 Scientific-Atlanta, Inc. Verification of the source of program information in a conditional access system
US6466252B1 (en) * 1999-04-13 2002-10-15 Nec Corporation Video conference system, and its reservation server, control unit, video conference terminal equipment, and storage medium stored therein program thereof
US6877043B2 (en) * 2000-04-07 2005-04-05 Broadcom Corporation Method for distributing sets of collision resolution parameters in a frame-based communications network
US6879690B2 (en) * 2001-02-21 2005-04-12 Nokia Corporation Method and system for delegation of security procedures to a visited domain

Cited By (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9608804B2 (en) 2004-01-30 2017-03-28 Avago Technologies General Ip (Singapore) Pte. Ltd. Secure key authentication and ladder system
US9461825B2 (en) 2004-01-30 2016-10-04 Broadcom Corporation Method and system for preventing revocation denial of service attacks
US20150319146A1 (en) * 2004-02-05 2015-11-05 Broadcom Corporation System and Method for Security Key Transmission With Strong Pairing to Destination Client
US20070297605A1 (en) * 2006-06-26 2007-12-27 Sony Corporation Memory access control apparatus and method, and communication apparatus
US20100034389A1 (en) * 2007-03-13 2010-02-11 Oleg Veniaminovich Sakharov Conditional access system and method for limiting access to content in broadcasting and receiving systems
US8898753B1 (en) 2007-11-15 2014-11-25 Salesforce.Com, Inc. On-demand service security system and method for managing a risk of access as a condition of permitting access to the on-demand service
US8875259B2 (en) * 2007-11-15 2014-10-28 Salesforce.Com, Inc. On-demand service security system and method for managing a risk of access as a condition of permitting access to the on-demand service
US20130247217A1 (en) * 2007-11-15 2013-09-19 Salesforce.Com, Inc On-demand service security system and method for managing a risk of access as a condition of permitting access to the on-demand service
US9565182B2 (en) 2007-11-15 2017-02-07 Salesforce.Com, Inc. Managing access to an on-demand service
US9794250B2 (en) 2007-11-15 2017-10-17 Salesforce.Com, Inc. On-demand service security system and method for managing a risk of access as a condition of permitting access to the on-demand service
US10313329B2 (en) 2007-11-15 2019-06-04 Salesforce.Com, Inc. On-demand service security system and method for managing a risk of access as a condition of permitting access to the on-demand service
US20110311044A1 (en) * 2009-12-11 2011-12-22 Irdeto B.V. Providing control words to a receiver
US9418208B2 (en) 2011-01-03 2016-08-16 Thomson Licensing Distribution of digital content protected by watermark-generating password
US8687807B2 (en) 2011-01-26 2014-04-01 Nagrastar, L.L.C. Cascading dynamic crypto periods
WO2012102729A1 (en) * 2011-01-26 2012-08-02 Nagrastar L.L.C. Cascading dynamic crypto periods
US20140136248A1 (en) * 2012-10-09 2014-05-15 Vendini, Inc. Ticket transfer fingerprinting, security, and anti-fraud measures

Also Published As

Publication number Publication date
FR2831737A1 (en) 2003-05-02
KR100923479B1 (en) 2009-10-27
KR20050039705A (en) 2005-04-29
JP2005507619A (en) 2005-03-17
WO2003039153A2 (en) 2003-05-08
FR2831737B1 (en) 2003-12-26
JP4520148B2 (en) 2010-08-04
EP1461951A2 (en) 2004-09-29
WO2003039153A3 (en) 2003-10-09

Similar Documents

Publication Publication Date Title
US7565546B2 (en) System, method and apparatus for secure digital content transmission
US5937067A (en) Apparatus and method for local encryption control of a global transport data stream
US7155611B2 (en) Method of operating a conditional access system for broadcast applications
DE69914306T2 (en) RECORDING ENCRYPTED DIGITAL DATA
US7383561B2 (en) Conditional access system
US20040243803A1 (en) Controlled-access method and system for transmitting scrambled digital data in a data exchange network
US8243925B2 (en) Method and apparatus for supporting multiple broadcasters independently using a single conditional access system
EP2317767A1 (en) Method for accessing services by a user unit
US10091537B2 (en) Method and multimedia unit for processing a digital broadcast transport stream
EP0950319A1 (en) Preventing replay attacks on digital information distributed by network service providers
US20080059993A1 (en) Method and system for transmitting and receiving authorization message
US20060174351A1 (en) Method and system for CAS key assignment for digital broadcast service
CN1163073C (en) Method and system for handling two CA systems in same receiver
JP2006510323A (en) Access control method and system for digital pay TV
Cruickshank et al. A Comparison between satellite DVB conditional access and secure IP multicast
US20040047472A1 (en) Threshold cryptography scheme for conditional access systems
KR100462825B1 (en) Intelligent broadcasting system for providing broadcasting services with multi-level quality
De Santis et al. A blocker-proof conditional access system
EP3264306B1 (en) Reinforcing the security of a pay television system
US7907728B2 (en) Method and system of transferring scrambled content
KR101240659B1 (en) Cas system and method for digital broadcating receiver
Konstantas Dimitris Thanos Dimitri Konstantas

Legal Events

Date Code Title Description
AS Assignment

Owner name: FRANCE TELECOM, FRANCE

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:CODET, ANDRE;FEVRIER, PIERRE;REEL/FRAME:015637/0898

Effective date: 20040329

AS Assignment

Owner name: CHIMIE, RHODIA, FRANCE

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:GUENOUNI, NATHALIE;PEVERE, VIRGINIE;VOGIN, BERNARD;REEL/FRAME:016021/0120

Effective date: 20040820

STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION